CONFIG_CIFS_ALLOW_INSECURE_LEGACY: Support legacy servers which use less secure dialects

General informations

The Linux kernel configuration item CONFIG_CIFS_ALLOW_INSECURE_LEGACY has multiple definitions:

Support legacy servers which use less secure dialects found in fs/smb/client/Kconfig

The configuration item CONFIG_CIFS_ALLOW_INSECURE_LEGACY:

• prompt: Support legacy servers which use less secure dialects
• type: bool
• depends on: CONFIG_CIFS
• defined in fs/smb/client/Kconfig
• found in Linux kernels: 6.4–6.11, 6.12-rc+HEAD

Help text

Modern dialects, SMB2.1 and later (including SMB3 and 3.1.1), have additional security features, including protection against man-in-the-middle attacks and stronger crypto hashes, so the use of legacy dialects (SMB1/CIFS and SMB2.0) is discouraged.

Disabling this option prevents users from using vers=1.0 or vers=2.0 on mounts with cifs.ko

If unsure, say Y.

Support legacy servers which use less secure dialects found in fs/cifs/Kconfig

The configuration item CONFIG_CIFS_ALLOW_INSECURE_LEGACY:

• prompt: Support legacy servers which use less secure dialects
• type: bool
• depends on: CONFIG_CIFS
• defined in fs/cifs/Kconfig
• found in Linux kernels: 4.19–4.20, 5.0–5.19, 6.0–6.3, 6.4-rc+HEAD

Help text

Modern dialects, SMB2.1 and later (including SMB3 and 3.1.1), have additional security features, including protection against man-in-the-middle attacks and stronger crypto hashes, so the use of legacy dialects (SMB1/CIFS and SMB2.0) is discouraged.

Disabling this option prevents users from using vers=1.0 or vers=2.0 on mounts with cifs.ko

If unsure, say Y.

Hardware

LKDDb

Raw data from LKDDb:

• (none)

Sources

This page is automaticly generated with free (libre, open) software lkddb(see lkddb-sources).

The data is retrived from:

• Linux kernel
• Linux Kernel Driver DataBase (LKDDb)

Automatic links from Google (and ads)

Custom Search

Popular queries: